[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Sep 12 20:27:50 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c696f296 by Salvatore Bonaccorso at 2022-09-12T21:27:25+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11266,7 +11266,7 @@ CVE-2022-36081 (Wikmd is a file based wiki that uses markdown. Prior to version
 CVE-2022-36080 (Wikmd is a file based wiki that uses markdown. Prior to version 1.7.1, ...)
 	NOT-FOR-US: Wikmd
 CVE-2022-36079 (Parse Server is an open source backend that can be deployed to any inf ...)
-	TODO: check
+	NOT-FOR-US: Node parse-server
 CVE-2022-36078 (Binary provides encoding/decoding in Borsh and other formats. The vuln ...)
 	NOT-FOR-US: gagliardetto/Binary (tool to provide encoding/decoding in Borsh and other formats)
 CVE-2022-36077
@@ -11278,7 +11278,7 @@ CVE-2022-36075
 CVE-2022-36074
 	RESERVED
 CVE-2022-36073 (RubyGems.org is the Ruby community gem host. A bug in password & e ...)
-	TODO: check
+	NOT-FOR-US: RubyGems.org is the Ruby community gem host
 CVE-2022-36072 (SilverwareGames.io is a social network for users to play video games o ...)
 	NOT-FOR-US: SilverwareGames.io
 CVE-2022-36071 (SFTPGo is configurable SFTP server with optional HTTP/S, FTP/S and Web ...)
@@ -24163,7 +24163,7 @@ CVE-2022-31249
 CVE-2022-31248 (A Observable Response Discrepancy vulnerability in spacewalk-java of S ...)
 	NOT-FOR-US: Uyuni
 CVE-2022-31247 (An Improper Authorization vulnerability in SUSE Rancher, allows any us ...)
-	TODO: check
+	NOT-FOR-US: Rancher
 CVE-2022-1807 (Multiple SQLi vulnerabilities in Webadmin allow for privilege escalati ...)
 	NOT-FOR-US: Sophos
 CVE-2022-1806 (Cross-site Scripting (XSS) - Reflected in GitHub repository rtxteam/rt ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c696f2964252067e7e94c48a312559b6214cebc4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c696f2964252067e7e94c48a312559b6214cebc4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220912/d758db1a/attachment.htm>

More information about the debian-security-tracker-commits mailing list